Sonicwall Routing

I have a scenario where I am currently using a WAN connection on my TZ210 to a network "above" mine that provides access to necessary servers as well as the Internet. Currently, I have about 75 one-to-one NATs for various internal static IPs to external static IPs, which are necessary for the server communications. I am getting my own Internet connection, however, and would like to route all 10.168.0.0/255.255.252.0 traffic through the primary WAN connection (the current one) and then route all other Internet-bound traffic through the secondary WAN connection (the new one). What is the best way (most efficient) to do this?

Who is Participating?

1. Setup an source routing for the required packets. This is a route entry which is performed , so routing table would change

2. To route all other packet through the WAN interface, setup a default route ( In Cisco it would be ip route 0.0.0.0 0.0.0.0 "gateway ip", where gateway ip would the WAN interface gateway IP address. This is a route entry , so routing table would change.

3. Can you ellaborate on how the networks are setup on TZ210, as in how many physical interfaces (ethernet) are used on it like , where does the 10.168.0.0/255.255.252.0 terminate, is the packets destined for the internet setup on other interfaces, where is WAN IP address configured etc.
This is to recommend a solution for NAT.

Source based routing would be an option where you can select packets originating from a specific source to use a specific interface to exit.

0

TCS-techAuthor Commented: 2012-04-05

Thanks for the comment, Andrew!

Would that require changes to Routing, NAT Policy, and Firewall? That is what I had in mind, but I wasn't sure #1 if that was the most efficient way to handle it and #2 if it required changes to all 3 sections of the Sonicwall config or just the Routing. It seems, though, that all 3 would be required.

0

TCS-techAuthor Commented: 2012-04-05

I just thought of this as well: How would I route all other traffic through the new WAN connection?

0

TCS-techAuthor Commented: 2012-05-30

Thanks for your advice, Andrew! Sorry it took so long to respond. I must have missed the email to inform me of your reply. I am going to reconfigure the entire router sometime in July probably. I plan to setup the new Internet connection on the primary WAN (X1) and setup the (X2) port as a trusted LAN. Then, I will setup source routes to route all traffic destined for 10.168.0.0 through the X2 port like you suggested.